ALSA-2025:11462

[ALSA-2025:11462] Important: git security update

Type:

security

Severity:

important

Release date:

2025-07-22

Description:

Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to work on and contribute to projects without the need to have permission to push the changes to their official repositories, but also makes it possible for the user to work with no network connection.  

Security Fix(es):  

  * git: Git does not sanitize URLs when asking for credentials interactively (CVE-2024-50349)
  * git: Newline confusion in credential helpers can lead to credential exfiltration in git (CVE-2024-52006)
  * git: Git arbitrary code execution (CVE-2025-48384)
  * git: Git arbitrary file writes (CVE-2025-48385)
  * gitk: Git file creation flaw (CVE-2025-27613)
  * gitk: git script execution flaw (CVE-2025-27614)
  * git: Git GUI can create and overwrite files for which the user has write permission (CVE-2025-46835)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	git-credential-libsecret-2.47.3-1.el9_6.aarch64.rpm	04b8ed8e66f2867751c0e4f20e5836678345ed8564670f5fb46881ba9781f4c6
aarch64	git-subtree-2.47.3-1.el9_6.aarch64.rpm	06c9bf733e30b36dbf67172d8f7b8b2bea225c67c92ab0aac7e3d78b704c5328
aarch64	git-daemon-2.47.3-1.el9_6.aarch64.rpm	70cf0c36913f8afd589210a64c33ed7db7a10c3777f3f3915c6b58e820ce67bd
aarch64	git-core-2.47.3-1.el9_6.aarch64.rpm	779553f169188887142136cb77c4bd693ec1214778e3860693545a142d225723
aarch64	git-2.47.3-1.el9_6.aarch64.rpm	a63cafab4c4b4a957a61c8886418de73d8ce9a6f7f972e6e6ce7817737a4d87a
noarch	git-svn-2.47.3-1.el9_6.noarch.rpm	039c7428d046d2a93f8b541a1a012e23190a028df8a2ed48f3974503c2c8ab88
noarch	git-core-doc-2.47.3-1.el9_6.noarch.rpm	154f29b0e1dfbf2a77b8ba0bad45a4ddfffae7a34ecb2154dc7afe811ffd9194
noarch	git-email-2.47.3-1.el9_6.noarch.rpm	296d6134e3e0fcb08684a5a0c5ff8f37da7dfc3929e97ba7972347b8b75ef7cd
noarch	perl-Git-SVN-2.47.3-1.el9_6.noarch.rpm	6260e2162ff7971a9214ef11ee0604619036b34a824ad49aaa454b02628ea6b3
noarch	gitweb-2.47.3-1.el9_6.noarch.rpm	643b62eeb3e2ab909065bdcd816b6773f748d4caa8b355a2c6195bfcfb5a0bf8
noarch	perl-Git-2.47.3-1.el9_6.noarch.rpm	7bb360063a9bc96c44b1293282e549051313b8095997e106947e61d4368a49b8
noarch	git-gui-2.47.3-1.el9_6.noarch.rpm	9e8a0552cee383c9d37569bb221744a12672fa0e534a8477c240027c5ff156ef
noarch	gitk-2.47.3-1.el9_6.noarch.rpm	a4155777242e30a1f4da9e3fc2b2d18887f9ddb5c33b93ece8f3ee16d86245ef
noarch	git-all-2.47.3-1.el9_6.noarch.rpm	a787ed1f399dae43821c2e9196b8c67fc4af6ccf0695a61b278b551b4e8410c6
noarch	git-instaweb-2.47.3-1.el9_6.noarch.rpm	cf55cc547c4de2274cb03a3b3683691f7c0d706ab48904b9ebf507e435a9e099
ppc64le	git-daemon-2.47.3-1.el9_6.ppc64le.rpm	49d369f23f818421cfe4cca9d1df1756854f9750030944b7a6a4ca2f7dfcbc36
ppc64le	git-2.47.3-1.el9_6.ppc64le.rpm	8a1f40ba2cf5bfd45c6dcaf1be473c6108abdf6a3b8cc08e238394d48d86885e
ppc64le	git-subtree-2.47.3-1.el9_6.ppc64le.rpm	8fd483901cc60875401963994b24df2a01f08ddbce33c1df2fa4d4edc55aefb8
ppc64le	git-core-2.47.3-1.el9_6.ppc64le.rpm	b8ea626a57822b5ea91fcf01e2fd295c58e98c595f871adac7203b72ae81e7e5
ppc64le	git-credential-libsecret-2.47.3-1.el9_6.ppc64le.rpm	ceff097c2fa31e7b31c19cb9258ce799e3733091b664848353a8a8e68f1bab02
s390x	git-credential-libsecret-2.47.3-1.el9_6.s390x.rpm	062b01f8cce706df09c2f69efd2343151a7765ce33ad192d3edc9d4ce3689540
s390x	git-daemon-2.47.3-1.el9_6.s390x.rpm	59289fd59c70cbc22024ba4953434da17cf2b40d8ae60194ad7bcd3c8d7acb77
s390x	git-core-2.47.3-1.el9_6.s390x.rpm	5cf9ac7f09cf7a97bf7b1d0645aed8de4e4fd244f40f43226e5fdbfa97fd8ee8
s390x	git-2.47.3-1.el9_6.s390x.rpm	5e65de7000c8003ec8fcf4eaa4627c87a070283e12d609888492a9645681a25b
s390x	git-subtree-2.47.3-1.el9_6.s390x.rpm	9901c330ef8281cfe837e19f5c8ac9fb10f722b66d88a649669e0ba6ee75cd8f
x86_64	git-core-2.47.3-1.el9_6.x86_64.rpm	010d8086363d1ea77f2f06b54cbb124019c01721203a8d8badcbb1baf15807ab
x86_64	git-2.47.3-1.el9_6.x86_64.rpm	67d05d5ef07b9821fa9c5668155cb1ba4b757f191609a268dff8c8df46ced41f
x86_64	git-subtree-2.47.3-1.el9_6.x86_64.rpm	a3b50dec09d9f0a6f55a66b9e13ae320b9ab2a2c96324218d52efae4d2e03b1d
x86_64	git-credential-libsecret-2.47.3-1.el9_6.x86_64.rpm	d0049932dca1e5375b8341b69edf30c3fcc5fba4870cc970382146e9c7654a07
x86_64	git-daemon-2.47.3-1.el9_6.x86_64.rpm	dced8211a97b47246ec8c50173d179570d0e154caa1745d9682ff1ee3b867af7

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.